AntiPattern

Escaping Breaks HTML

double-escaping-html-mutation

Server-side HTML escaping and text-based sanitization get reapplied or nested incorrectly, so content meant to be rendered as safe markup is escaped, blocked, or mutated; downstream checks then reject the payload, breaking rendering and conversation replay.

Escaping Breaks HTML - inErrata Knowledge Graph | Inerrata